$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: IOu55w/kMwzIL7VEh1XMmW53gyw/smxV+uELNRYzm8c= Subject key identifier: 56:9F:3A:68:23:76:DD:F7:F3:90:B2:8A:E8:80:BC:21:67:C4:1E:1F Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0770 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 074D Signing time: Fri 22 Aug 2025 21:56:08 +0000 Manifest this update: Fri 22 Aug 2025 21:56:07 +0000 Manifest next update: Fri 29 Aug 2025 21:56:07 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: KqGeUePMgNY8R38YqVMdLtX1msFZIGU4PSvMU2EoEV8=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: yghGvORjCbrwPbkKWVhSZ4zOTt6ioVsM8lRS5kJkr+0=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: ibMAngc6C4+JXufdc4UjRpgLZzdehYxv7hgLysgCefA=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: e6KNfiSRL8HIlZFdQYAqnN5O/JJ1gZgCqccGEgtmPUM=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: EtYv33VoONviB5DogmNb9f2t5IayVZNNzvoHIml90Q8=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: B3TtfKIV8qBTfY8o/1C3LKcqpx/TLDJeKafLYgXCPS4=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: M0FoVt5RwJimEJ3yM4LIg2YOQNmwyICgIMilWYDArBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:56:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Aug 22 21:56:07 2025 GMT Not After : Aug 29 21:56:07 2025 GMT Subject: CN=68a8e777-65cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f7:c9:a8:02:fa:3e:18:6a:a6:96:2a:ce:74: 83:a1:59:92:e0:96:2c:42:d5:f3:ca:d8:39:77:7c: 5e:c9:78:f4:f4:0c:27:97:0f:18:3d:72:1c:02:e7: f2:bb:e2:17:51:6c:53:50:11:55:5c:f9:17:f3:64: 54:d6:c0:66:e3:3c:58:4b:47:b2:0f:19:39:8a:45: 2a:43:92:1e:8c:92:8c:dd:bf:81:5b:0c:32:3e:7f: f9:2b:fb:4f:3a:c4:ec:64:5a:93:db:61:f0:fd:e4: 56:8e:f7:53:d8:a3:68:1e:07:71:f8:85:c2:cd:98: ae:cd:d4:75:39:b3:85:e4:94:dc:76:93:fd:44:0b: d2:83:6d:a2:1b:41:61:da:f3:c1:37:be:c6:11:78: 70:dd:41:87:4b:89:53:f7:3f:7b:06:4a:2d:19:80: ef:8d:53:e9:30:b5:c5:96:dd:80:2f:c0:4d:54:4c: 18:8a:c2:47:74:21:35:c7:a5:e5:84:4d:76:2f:05: e9:b4:58:dd:da:ea:e5:6b:32:4f:89:72:0c:ee:5f: 26:8e:c7:90:9c:94:d6:22:93:06:a8:2d:41:f1:11: cc:63:79:bd:42:28:23:e7:50:99:3b:b6:c9:89:c2: 1d:77:df:19:da:9b:67:26:8a:d0:7a:19:01:4a:ad: e6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9F:3A:68:23:76:DD:F7:F3:90:B2:8A:E8:80:BC:21:67:C4:1E:1F X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:0e:42:4a:b3:ef:88:24:7a:b5:36:6b:11:95:5a:37:81:bc: c9:a4:93:1f:07:cc:90:8e:06:22:4f:7f:33:ea:95:53:0b:f3: 34:db:0f:27:d5:fe:60:ab:c6:9a:a6:1d:9a:d0:2e:aa:db:ff: a4:cd:20:71:ce:74:c6:e9:7c:33:c4:90:82:91:5c:84:1a:e9: 66:bb:35:7f:75:ac:ed:f0:21:f3:50:a2:93:20:0f:c4:0a:f9: 35:52:2a:6f:39:18:8d:d7:28:db:0e:80:65:af:8b:62:94:89: b7:36:79:bb:33:cc:9f:af:eb:7f:73:da:f4:2d:c5:ea:ab:b4: e8:81:c4:ef:eb:49:15:aa:3b:e1:c8:3b:fa:7c:ec:74:7b:41: d4:0e:4e:27:e6:8e:a4:d6:b5:64:15:28:3d:62:20:3d:a1:48: 4a:54:80:71:1a:ed:41:89:0a:98:df:70:8e:eb:9a:a7:fe:52: 31:4a:77:fb:f3:53:da:22:ad:97:87:5e:1d:43:34:a2:ed:68: 3f:40:86:6c:d0:e4:c3:36:90:85:34:08:61:7d:f7:76:fa:b9: 29:ee:a0:8f:05:ec:21:9c:06:20:04:73:24:e1:50:f2:db:1a: 34:5f:cf:c2:20:90:23:38:44:4b:9e:2e:7f:08:5e:bb:ad:33: 07:2f:b9:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwODIyMjE1NjA3WhcNMjUwODI5MjE1NjA3WjAYMRYwFAYD VQQDEw02OGE4ZTc3Ny02NWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvffJqAL6PhhqppYqznSDoVmS4JYsQtXzytg5d3xeyXj09Awnlw8YPXIcAufy u+IXUWxTUBFVXPkX82RU1sBm4zxYS0eyDxk5ikUqQ5IejJKM3b+BWwwyPn/5K/tP OsTsZFqT22Hw/eRWjvdT2KNoHgdx+IXCzZiuzdR1ObOF5JTcdpP9RAvSg22iG0Fh 2vPBN77GEXhw3UGHS4lT9z97BkotGYDvjVPpMLXFlt2AL8BNVEwYisJHdCE1x6Xl hE12LwXptFjd2urlazJPiXIM7l8mjseQnJTWIpMGqC1B8RHMY3m9Qigj51CZO7bJ icIdd98Z2ptnJorQehkBSq3m7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFafOmgj dt3385CyiuiAvCFnxB4fMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHDkJKs++IJHq1NmsRlVo3gbzJpJMfB8yQjgYiT38z6pVTC/M02w8n 1f5gq8aaph2a0C6q2/+kzSBxznTG6XwzxJCCkVyEGulmuzV/dazt8CHzUKKTIA/E Cvk1UipvORiN1yjbDoBlr4tilIm3Nnm7M8yfr+t/c9r0LcXqq7TogcTv60kVqjvh yDv6fOx0e0HUDk4n5o6k1rVkFSg9YiA9oUhKVIBxGu1BiQqY33CO65qn/lIxSnf7 81PaIq2Xh14dQzSi7Wg/QIZs0OTDNpCFNAhhffd2+rkp7qCPBewhnAYgBHMk4VDy 2xo0X8/CIJAjOERLni5/CF67rTMHL7nj -----END CERTIFICATE-----Generated at Sun Aug 24 00:49:54 2025 by rpki-client